Twitter had an unexpected response to the Zomato hack

With the popular online food delivery service Zomato admitting on Wednesday that almost 17 million records of its registered users were stolen from its database which include email addresses and hashed passwords, the data is now being sold on a popular Dark Web marketplace. The stolen data included usernames, email address and hashed password of users. Zomato has also assured all its users that their credit card information was fully secure and that payment-related information was stored separately in a PCI Data Security Standard (DSS) compliant vault.

According to a blogpost on the company's website, the "ethical hacker" - whose identity has been kept under wraps - simply wanted to expose the security vulnerabilities in the company's structure. He/she has also taken down the Dark Web marketplace link but gave a copy of leaked data to Zomato.

Further, so that others can learn from Zomato's mistakes, it will be posting this information on its blog once it fixes the loopholes. "We were able to access user names, email IDs, addresses and history of transactions.We highlighted this to Zomato but we have not heard from them", said Karthick Vigneshwar, director, infySEC. Patidar added, "No other information was exposed to anyone".

"We hash passwords with a one-way hashing algorithm, with multiple hashing iterations and individual salt per password", he explained.

"The hashed password can not be converted/decrypted back to plain text - so the sanctity of password is intact in case users' use the same password for other services", it said.

The good news is that the hackers have agreed to pull the listing from the market provided the platform runs a "healthy bug program for security researchers". "Your payment information is absolutely safe and there's no need to panic", Zomato said in a statement.

Still, this leaves 6.6 million Zomato users who are, and the firm says that it has taken steps to reset the passwords for all affected users, as well as having logged them out of its app and website. "This means your password can not be easily converted back to plain text", reads the blog post.

Password "hashing" is an encryption technique usually used for large online user databases. This content is not indexed on search engines like Google, and can only be accessed using software that can route around the public internet to get there.

This is not the first time that Zomato has been hacked. "Should an end user face any lossdamage due to data breach, they can sue Zomato and seek compensation".

Share

Related Articles

On Tuesday (16 May), it was revealed that Trump asked then-FBI Director James Comey to drop the investigation into Flynn. Subpoenas have been issued to businesses that worked with Flynn and his associates, according to The Times .

It was a flawless way walking around at the end with the families and everything - it just shows what this club's like. HARRY KANE admitted to feeling emotional after scoring Tottenham Hotspur's last ever goal at White Hart Lane .

The biggest difference this time around? "And we never talked about.it's just not there", Cornell remarked in 2011. The manager of the musician claimed that his death occurred unexpectedly saying that his wife family are in shock.

The Intelligence Committee is seeking to interview Flynn as part of its probe of Russian election interference. When Flynn declined to do so, the panel issued a subpoena on May 10, according to the AP.

The company said the virus has been localized and "technical work is underway to destroy it and update the antivirus protection". NHS England said that, as of 3pm on Monday, two hospitals remained on divert following the attack, down from seven on Sunday.

Officials told CNN at the time that the ban came about following the collection of intercepted material and "human intelligence". Reporters spent much of the evening camped out outside of Press Secretary Sean Spicer's office, hoping for answers.

But a senior North Korean diplomat has said Pyongyang is also open to having talks with Washington under the right conditions . The US troop presence in South Korea, a legacy of the Korean War, is primarily to guard against the North Korean threat.

However, let's be clear - what we will be putting over is the type of leader Jeremy will be, and people will respect him, I think. He suggested winning 200 seats - almost 30 fewer than in 2015 - would be a "successful" result for Mr Corbyn.

We say were, because Celtic's 100th goal of the season was scored after 18th minutes courtesy of a Leigh Griffiths penalty. They can cut you open and play at a tempo and if you let them play at that tempo. we stood off them at key times.

Trump Will Ask Israel to Curb West Bank Settlement Growth
The low-cost Icelandic airline WOW announced Tuesday it would begin operating flights to Israel from the US starting September. Several previous USA presidents have promised to move the embassy to Jerusalem , but none have followed through on the pledge.

1 dead, 25 injured in Barron County
Fire Chaplain Danny Ringer told reporters late Tuesday that the storm destroyed 40 homes and severely damaged up to 75 others. He said that in some cases, the responders left their own storm-damaged homes to help search the mobile home park.

Citigroup reiterated Persimmon PLC (LON:PSN) as 'Neutral'
Finally, Beaufort Securities reissued a hold rating on shares of Wolseley plc in a research report on Wednesday, March 29th. Numis Securities Ltd reaffirmed their add rating on shares of Just Eat PLC (LON:JE) in a report issued on Tuesday morning.

Rubio praises Trump for new Venezuela sanctions
In February , the United States blacklisted Venezuelan Vice President Tareck El Aissami for alleged links to drug trafficking. Opposition activists set up barricades during a demonstration against President Nicolas Maduro in San Cristobal on 24 April.

One dead as man drives car into crowd on Times Square
Magdy Tawfik, a hot dog vendor whose stand was near the corner, said the vehicle had hit three people there. "It was wonderful . I'm not saying that we haven't been doing a good job; clearly we can do more, where this might not have happened.